puppet-octavia

TripleO should configure Octavia related user roles in Keystone

Bug #1762774 reported by Nir Magnezi on 2018-04-10

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	puppet-octavia	Fix Released	Undecided	Brent Eagles

Bug Description

escription of problem:
=======================
According to [1], we should add the following roles to keystone:

role:load-balancer_observer
role:load-balancer_global_observer
role:load-balancer_member
role:load-balancer_quota_admin
role:load-balancer_admin

Currently, the lack of 'role:load-balancer_member' fails the tempest scenario found here[2].
The outcome

[1] https://docs.openstack.org/octavia/queens/configuration/policy.html
[2] https://github.com/openstack/octavia-tempest-plugin/blob/master/octavia_tempest_plugin/tests/v2/scenario/test_basic_ops.py

Tags:

Brent Eagles (beagles) on 2018-04-10

Changed in puppet-octavia:
status:	New → Confirmed
assignee:	nobody → Brent Eagles (beagles)

OpenStack Infra (hudson-openstack) on 2018-04-10

Changed in puppet-octavia:
assignee:	Brent Eagles (beagles) → Nir Magnezi (nmagnezi)
status:	Confirmed → In Progress

Nir Magnezi (nmagnezi) on 2018-04-10

Changed in puppet-octavia:
assignee:	Nir Magnezi (nmagnezi) → nobody

OpenStack Infra (hudson-openstack) on 2018-04-10

Changed in puppet-octavia:
assignee:	nobody → Brent Eagles (beagles)

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2018-04-13: Related fix merged to puppet-octavia (master)

Reviewed: https://review.openstack.org/560031
Committed: https://git.openstack.org/cgit/openstack/puppet-octavia/commit/?id=d6c8f91f6394b7bd1c82fd6212b81d4a10590a3b
Submitter: Zuul
Branch: master

commit d6c8f91f6394b7bd1c82fd6212b81d4a10590a3b
Author: Brent Eagles <email address hidden>
Date: Tue Apr 10 11:26:03 2018 -0230

Add keystone roles for Octavia policies

This patch adds creation of the necessary keystone roles to support
using Octavia's access policies.

Related-Bug: #1762774
Change-Id: Ib34ad49d52bb6afba6d035cf966592e0f0fd9a85

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2018-04-13: Related fix proposed to puppet-octavia (stable/queens)

Related fix proposed to branch: stable/queens
Review: https://review.openstack.org/561347

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2018-04-16: Related fix merged to puppet-octavia (stable/queens)

Reviewed: https://review.openstack.org/561347
Committed: https://git.openstack.org/cgit/openstack/puppet-octavia/commit/?id=613596c267567dd10574d36e89fad2f2e16f9ac3
Submitter: Zuul
Branch: stable/queens

commit 613596c267567dd10574d36e89fad2f2e16f9ac3
Author: Brent Eagles <email address hidden>
Date: Tue Apr 10 11:26:03 2018 -0230

Add keystone roles for Octavia policies

This patch adds creation of the necessary keystone roles to support
using Octavia's access policies.

    Related-Bug: #1762774
    Change-Id: Ib34ad49d52bb6afba6d035cf966592e0f0fd9a85
    (cherry picked from commit d6c8f91f6394b7bd1c82fd6212b81d4a10590a3b)

tags:

added: in-stable-queens

Tobias Urdin (tobias-urdin) on 2020-01-28

Changed in puppet-octavia:
status:	In Progress → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.